initial commit of file from CVS for e-smith-pop3 on Wed 12 Jul 09:03:33 BST 2023

root/etc/e-smith/db/configuration/defaults/pop3/TCPPort

@@ -0,0 +1 @@
+110

root/etc/e-smith/db/configuration/defaults/pop3/access

@@ -0,0 +1 @@
+private

root/etc/e-smith/db/configuration/defaults/pop3/status

@@ -0,0 +1 @@
+enabled

root/etc/e-smith/db/configuration/defaults/pop3/type

@@ -0,0 +1 @@
+service

root/etc/e-smith/db/configuration/defaults/pop3s/TCPPort

@@ -0,0 +1 @@
+995

root/etc/e-smith/db/configuration/defaults/pop3s/access

@@ -0,0 +1 @@
+private

root/etc/e-smith/db/configuration/defaults/pop3s/status

@@ -0,0 +1 @@
+enabled

root/etc/e-smith/db/configuration/defaults/pop3s/type

@@ -0,0 +1 @@
+service

root/etc/e-smith/templates.metadata/var/service/pop3/peers/0

@@ -0,0 +1 @@
+PERMS=use esmith::ConfigDB; (esmith::ConfigDB->open_ro->get('pop3')->prop('access') eq "private") ? "000" : "0644"

root/etc/e-smith/templates.metadata/var/service/pop3/peers/local

@@ -0,0 +1 @@
+PERMS=use esmith::ConfigDB; (esmith::ConfigDB->open_ro->get('pop3')->prop('status') eq "enabled") ? "0644" : "0000"

root/etc/e-smith/templates.metadata/var/service/pop3s/peers/0

@@ -0,0 +1 @@
+PERMS=use esmith::ConfigDB; (esmith::ConfigDB->open_ro->get('pop3s')->prop('access') eq "private") ? "000" : "0644"

root/etc/e-smith/templates.metadata/var/service/pop3s/peers/local

@@ -0,0 +1 @@
+PERMS=use esmith::ConfigDB; (esmith::ConfigDB->open_ro->get('pop3s')->prop('status') eq "enabled") ? "0644" : "0000"

root/etc/e-smith/templates/etc/hosts.allow/pop3s

@@ -0,0 +1,3 @@
+{
+    $DB->hosts_allow_spec('pop3s', 'pop3s');
+}

root/etc/e-smith/templates/etc/hosts.allow/qmail-popup

@@ -0,0 +1,3 @@
+{
+    $DB->hosts_allow_spec('pop3', 'qmail-popup');
+}

root/etc/e-smith/templates/etc/pam.d/pop3/10authPOP3users

@@ -0,0 +1 @@
+auth       required     pam_listfile.so item=user sense=allow file=/etc/e-smith/pam/accounts.allow onerr=fail

root/etc/e-smith/templates/etc/pam.d/pop3/20auth

@@ -0,0 +1,3 @@
+auth       { -f "/lib/security/pam_pwdb.so" ||
+             -f "/lib64/security/pam_pwdb.so" ? "required     pam_stack.so service=system-auth" :
+                                                "include      system-auth" }

root/etc/e-smith/templates/etc/pam.d/pop3/30account

@@ -0,0 +1,3 @@
+account    { -f "/lib/security/pam_pwdb.so" ||
+             -f "/lib64/security/pam_pwdb.so" ? "required     pam_stack.so service=system-auth" :
+                                                "include      system-auth" }

root/etc/e-smith/templates/etc/pam.d/pop3/40session

@@ -0,0 +1,3 @@
+session    { -f "/lib/security/pam_pwdb.so" ||
+             -f "/lib64/security/pam_pwdb.so" ? "required     pam_stack.so service=system-auth" :
+                                                "include      system-auth" }

root/etc/e-smith/templates/etc/pam.d/pop3/template-begin

@@ -0,0 +1 @@
+/etc/e-smith/templates-default/template-begin-pam

root/etc/e-smith/templates/var/service/pop3/runenv/10Fqdn

@@ -0,0 +1 @@
+FQDN={ $SystemName . '.' . $DomainName }

root/etc/e-smith/templates/var/service/pop3/runenv/15Instances

@@ -0,0 +1,2 @@
+PER_IP_INSTANCES={ $pop3{ConcurrencyLimitPerIP} || '4' }
+CONCURRENCYREMOTE={ $pop3{ConcurrencyLimit} || '40' }

root/etc/e-smith/templates/var/service/pop3/runenv/20Mem

@@ -0,0 +1,9 @@
+{
+# memory limit to catch any memory leak before it kills the system
+my $MIN_MEMORY_LIMIT = 40000000;
+
+# The MIN_MEMORY_LIMIT is returned unless the DB variable is defined and greater than MIN_MEMORY_LIMIT
+my $limit = $pop3{MemLimit} || $MIN_MEMORY_LIMIT;
+$limit = $MIN_MEMORY_LIMIT if $limit < $MIN_MEMORY_LIMIT;
+$OUT = "MEM=$limit";
+}

root/etc/e-smith/templates/var/service/pop3/runenv/25Listen

@@ -0,0 +1,2 @@
+LISTENIP={ $pop3{ListenIP} || '0' }
+PORT={ $pop3{TCPPort} || '110' }

root/etc/e-smith/templates/var/service/pop3s/runenv/10Fqdn

@@ -0,0 +1 @@
+FQDN={ $SystemName . '.' . $DomainName }

root/etc/e-smith/templates/var/service/pop3s/runenv/15Instances

@@ -0,0 +1,2 @@
+PER_IP_INSTANCES={ $pop3s{ConcurrencyLimitPerIP} || '4' }
+CONCURRENCYREMOTE={ $pop3s{ConcurrencyLimit} || '40' }

root/etc/e-smith/templates/var/service/pop3s/runenv/20Mem

@@ -0,0 +1,9 @@
+{
+# memory limit to catch any memory leak before it kills the system
+my $MIN_MEMORY_LIMIT = 80000000;
+
+# The MIN_MEMORY_LIMIT is returned unless the DB variable is defined and greater than MIN_MEMORY_LIMIT
+my $limit = $pop3s{MemLimit} || $MIN_MEMORY_LIMIT;
+$limit = $MIN_MEMORY_LIMIT if $limit < $MIN_MEMORY_LIMIT;
+$OUT = "MEM=$limit";
+}

root/etc/e-smith/templates/var/service/pop3s/runenv/25Listen

@@ -0,0 +1,2 @@
+LISTENIP={ $pop3s{ListenIP} || '0' }
+PORT={ $pop3s{TCPPort} || '110' }

root/etc/e-smith/templates/var/service/pop3s/stunnel.conf/10ssl

@@ -0,0 +1,11 @@
+cert = /service/imap/ssl/imapd.pem
+sslVersion = all
+{
+
+$OUT .= "# SSL protocols can be set with DB props SSLv2, SSLv3 and TLSv1\n";
+$OUT .= "options = NO_SSLv2\n" unless ($pop3s{SSLv2} || 'disabled') eq 'enabled';
+$OUT .= "options = NO_SSLv3\n" unless ($pop3s{SSLv3} || 'disabled') eq 'enabled';
+$OUT .= "options = NO_TLSv1\n" unless ($pop3s{TLSv1} || 'enabled') eq 'enabled';
+
+}
+fips = no

root/etc/e-smith/templates/var/service/pop3s/stunnel.conf/20foreground

@@ -0,0 +1 @@
+foreground = yes

root/etc/e-smith/templates/var/service/pop3s/stunnel.conf/30service

@@ -0,0 +1 @@
+service = pop3s

root/etc/e-smith/templates/var/service/pop3s/stunnel.conf/40exec

@@ -0,0 +1,2 @@
+exec = /var/qmail/bin/qmail-popup
+execargs = qmail-popup {$SystemName}.{$DomainName} checkpassword-pam -s pop3 /var/qmail/bin/qmail-pop3d Maildir